Oval Definition:	oval:org.opensuse.security:def:6216
Revision Date: 2021-11-03 Version: 1 Title: Security update for qemu (Important) Description: This update for qemu fixes the following issues: Security issues fixed: - CVE-2021-3713: Fix out-of-bounds write in UAS (USB Attached SCSI) device emulation (bsc#1189702) - CVE-2021-3748: Fix heap use-after-free in virtio_net_receive_rcu (bsc#1189938) Non-security issues fixed: - Add transfer length item in block limits page of scsi vpd (bsc#1190425) - Fix qemu crash while deleting xen-block (bsc#1189234) Family: unix Class: patch Status: Reference(s): 1189234 1189702 1189938 1190425 CVE-2007-5970 CVE-2008-1483 CVE-2008-7247 CVE-2009-0946 CVE-2009-4019 CVE-2009-4028 CVE-2009-4030 CVE-2010-2497 CVE-2010-2805 CVE-2010-3053 CVE-2010-3054 CVE-2010-3311 CVE-2010-3814 CVE-2010-5298 CVE-2011-0226 CVE-2011-3177 CVE-2011-3848 CVE-2011-3872 CVE-2012-1616 CVE-2012-3864 CVE-2012-3865 CVE-2012-3866 CVE-2012-3867 CVE-2012-5615 CVE-2012-5668 CVE-2012-5669 CVE-2012-5670 CVE-2013-0221 CVE-2013-0222 CVE-2013-0223 CVE-2013-1976 CVE-2013-3567 CVE-2013-4143 CVE-2013-4238 CVE-2013-4242 CVE-2013-4761 CVE-2013-4956 CVE-2014-0195 CVE-2014-0198 CVE-2014-0221 CVE-2014-0224 CVE-2014-2240 CVE-2014-2494 CVE-2014-2653 CVE-2014-3248 CVE-2014-3253 CVE-2014-3470 CVE-2014-3591 CVE-2014-3634 CVE-2014-4207 CVE-2014-4258 CVE-2014-4260 CVE-2014-4274 CVE-2014-4287 CVE-2014-4650 CVE-2014-6463 CVE-2014-6464 CVE-2014-6469 CVE-2014-6474 CVE-2014-6478 CVE-2014-6484 CVE-2014-6489 CVE-2014-6491 CVE-2014-6494 CVE-2014-6495 CVE-2014-6496 CVE-2014-6500 CVE-2014-6505 CVE-2014-6507 CVE-2014-6520 CVE-2014-6530 CVE-2014-6551 CVE-2014-6555 CVE-2014-6559 CVE-2014-6564 CVE-2014-6568 CVE-2014-8964 CVE-2014-9656 CVE-2014-9657 CVE-2014-9658 CVE-2014-9659 CVE-2014-9660 CVE-2014-9661 CVE-2014-9662 CVE-2014-9663 CVE-2014-9664 CVE-2014-9665 CVE-2014-9666 CVE-2014-9667 CVE-2014-9668 CVE-2014-9669 CVE-2014-9670 CVE-2014-9671 CVE-2014-9672 CVE-2014-9673 CVE-2014-9674 CVE-2014-9675 CVE-2015-0374 CVE-2015-0381 CVE-2015-0382 CVE-2015-0391 CVE-2015-0411 CVE-2015-0432 CVE-2015-0433 CVE-2015-0441 CVE-2015-0499 CVE-2015-0501 CVE-2015-0505 CVE-2015-0837 CVE-2015-1782 CVE-2015-2325 CVE-2015-2326 CVE-2015-2568 CVE-2015-2571 CVE-2015-2573 CVE-2015-3152 CVE-2015-4041 CVE-2015-4042 CVE-2015-4792 CVE-2015-4802 CVE-2015-4807 CVE-2015-4815 CVE-2015-4826 CVE-2015-4830 CVE-2015-4836 CVE-2015-4858 CVE-2015-4861 CVE-2015-4870 CVE-2015-4913 CVE-2015-5352 CVE-2015-5600 CVE-2015-5969 CVE-2015-6563 CVE-2015-6564 CVE-2015-7511 CVE-2015-8325 CVE-2016-0505 CVE-2016-0546 CVE-2016-0596 CVE-2016-0597 CVE-2016-0598 CVE-2016-0600 CVE-2016-0606 CVE-2016-0608 CVE-2016-0609 CVE-2016-0616 CVE-2016-0640 CVE-2016-0641 CVE-2016-0642 CVE-2016-0643 CVE-2016-0644 CVE-2016-0646 CVE-2016-0647 CVE-2016-0648 CVE-2016-0649 CVE-2016-0650 CVE-2016-0651 CVE-2016-0655 CVE-2016-0666 CVE-2016-0668 CVE-2016-0772 CVE-2016-0777 CVE-2016-0778 CVE-2016-0787 CVE-2016-1000110 CVE-2016-10009 CVE-2016-10010 CVE-2016-10011 CVE-2016-10012 CVE-2016-10708 CVE-2016-1908 CVE-2016-2047 CVE-2016-3115 CVE-2016-3477 CVE-2016-3492 CVE-2016-3521 CVE-2016-3615 CVE-2016-5440 CVE-2016-5584 CVE-2016-5624 CVE-2016-5626 CVE-2016-5629 CVE-2016-5636 CVE-2016-5699 CVE-2016-6210 CVE-2016-6313 CVE-2016-6515 CVE-2016-6662 CVE-2016-6663 CVE-2016-6664 CVE-2016-7440 CVE-2016-7837 CVE-2016-8283 CVE-2016-8858 CVE-2016-9634 CVE-2016-9635 CVE-2016-9636 CVE-2016-9800 CVE-2016-9804 CVE-2016-9807 CVE-2016-9808 CVE-2016-9810 CVE-2017-1000250 CVE-2017-10268 CVE-2017-10378 CVE-2017-10689 CVE-2017-15906 CVE-2017-18207 CVE-2017-2295 CVE-2017-3238 CVE-2017-3243 CVE-2017-3244 CVE-2017-3257 CVE-2017-3258 CVE-2017-3265 CVE-2017-3291 CVE-2017-3302 CVE-2017-3308 CVE-2017-3309 CVE-2017-3312 CVE-2017-3313 CVE-2017-3317 CVE-2017-3318 CVE-2017-3453 CVE-2017-3456 CVE-2017-3464 CVE-2017-3636 CVE-2017-3641 CVE-2017-3653 CVE-2017-7526 CVE-2018-0495 CVE-2018-17407 CVE-2018-2562 CVE-2018-2612 CVE-2018-2622 CVE-2018-2640 CVE-2018-2665 CVE-2018-2668 CVE-2018-2755 CVE-2018-2761 CVE-2018-2766 CVE-2018-2767 CVE-2018-2771 CVE-2018-2781 CVE-2018-2782 CVE-2018-2784 CVE-2018-2787 CVE-2018-2813 CVE-2018-2817 CVE-2018-2819 CVE-2021-3713 CVE-2021-3748 Platform(s): openSUSE 13.1 openSUSE 13.1 NonFree openSUSE 13.2 openSUSE 13.2 NonFree openSUSE Leap 42.1 SUSE Cloud Compute Node for SUSE Linux Enterprise 12 5 SUSE Linux Enterprise Build System Kit 12 SUSE Linux Enterprise Build System Kit 12 SP1 SUSE Linux Enterprise Build System Kit 12 SP2 SUSE Linux Enterprise Build System Kit 12 SP3 SUSE Linux Enterprise Build System Kit 12 SP4 SUSE Linux Enterprise Desktop 11 SP2 SUSE Linux Enterprise Desktop 11 SP3 SUSE Linux Enterprise Desktop 12 SUSE Linux Enterprise Desktop 12 SP1 SUSE Linux Enterprise Desktop 12 SP3 SUSE Linux Enterprise Desktop 12 SP4 SUSE Linux Enterprise for SAP 12 SUSE Linux Enterprise for SAP 12 SP1 SUSE Linux Enterprise for SAP 12 SP2 SUSE Linux Enterprise High Availability 12 SP2 SUSE Linux Enterprise High Performance Computing 12 SP5 SUSE Linux Enterprise Live Patching 12 SUSE Linux Enterprise Live Patching 12 SP3 SUSE Linux Enterprise Module for Advanced Systems Management 12 SUSE Linux Enterprise Module for Containers 12 SUSE Linux Enterprise Module for Legacy Software 12 SUSE Linux Enterprise Module for Open Buildservice Development Tools 15 SP3 SUSE Linux Enterprise Module for Public Cloud 12 SUSE Linux Enterprise Module for Web Scripting 12 SUSE Linux Enterprise Server 11 SP1 SUSE Linux Enterprise Server 11 SP2 SUSE Linux Enterprise Server 11 SP3 SUSE Linux Enterprise Server 11 SP4 SUSE Linux Enterprise Server 11-SECURITY SUSE Linux Enterprise Server 12 SUSE Linux Enterprise Server 12 SP1 SUSE Linux Enterprise Server 12 SP2 SUSE Linux Enterprise Server 12 SP3 SUSE Linux Enterprise Server 12 SP4 SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP2 SUSE Linux Enterprise Server for SAP Applications 12 SP3 SUSE Linux Enterprise Server for VMWare 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP2 SUSE Linux Enterprise Software Development Kit 11 SP3 SUSE Linux Enterprise Software Development Kit 11 SP4 SUSE Linux Enterprise Software Development Kit 12 SUSE Linux Enterprise Software Development Kit 12 SP1 SUSE Linux Enterprise Software Development Kit 12 SP2 SUSE Linux Enterprise Software Development Kit 12 SP3 SUSE Linux Enterprise Software Development Kit 12 SP4 SUSE OpenStack Cloud 6 Product(s): Definition Synopsis SUSE Linux Enterprise Build System Kit 12 is installed AND Package Information go-1.5.4-20 is installed OR go-doc-1.5.4-20 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP1 is installed AND kernel-zfcpdump-3.12.51-60.20 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP2 is installed AND kernel-zfcpdump-4.4.21-90 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP3 is installed AND kernel-zfcpdump-4.4.82-6.3 is installed Definition Synopsis SUSE Linux Enterprise Build System Kit 12 SP4 is installed AND Package Information cups-1.7.5-20.20 is installed OR cups-ddk-1.7.5-20.20 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP2 is installed AND Package Information coreutils-8.12-6.25.29.1 is installed OR coreutils-lang-8.12-6.25.29.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 11 SP3 is installed AND Package Information MozillaFirefox-24.6.0esr-0.8.1 is installed OR MozillaFirefox-branding-SLED-24-0.7.48 is installed OR MozillaFirefox-translations-24.6.0esr-0.8.1 is installed OR libfreebl3-3.16.1-0.8.1 is installed OR libfreebl3-32bit-3.16.1-0.8.1 is installed OR libsoftokn3-3.16.1-0.8.1 is installed OR libsoftokn3-32bit-3.16.1-0.8.1 is installed OR mozilla-nspr-4.10.6-0.3.1 is installed OR mozilla-nspr-32bit-4.10.6-0.3.1 is installed OR mozilla-nss-3.16.1-0.8.1 is installed OR mozilla-nss-32bit-3.16.1-0.8.1 is installed OR mozilla-nss-tools-3.16.1-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 is installed AND Package Information ntp-4.2.6p5-31 is installed OR ntp-doc-4.2.6p5-31 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP1 is installed AND syslog-service-2.0-778 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP3 is installed AND yast2-3.2.36-1 is installed Definition Synopsis SUSE Linux Enterprise Desktop 12 SP4 is installed AND argyllcms-1.6.3-3 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 is installed AND Package Information kgraft-patch-3_12_61-52_66-default-2-2 is installed OR kgraft-patch-3_12_61-52_66-xen-2-2 is installed OR kgraft-patch-SLE12_Update_19-2-2 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP1 is installed AND Package Information compat-openssl098-0.9.8j-102.1 is installed OR libopenssl0_9_8-0.9.8j-102.1 is installed Definition Synopsis SUSE Linux Enterprise for SAP 12 SP2 is installed AND Package Information compat-openssl098-0.9.8j-105.1 is installed OR libopenssl0_9_8-0.9.8j-105.1 is installed Definition Synopsis SUSE Linux Enterprise High Availability 12 SP2 is installed AND Package Information cluster-md-kmp-default-4.4.21-69 is installed OR cluster-network-kmp-default-4.4.21-69 is installed OR dlm-kmp-default-4.4.21-69 is installed OR gfs2-kmp-default-4.4.21-69 is installed OR ocfs2-kmp-default-4.4.21-69 is installed Definition Synopsis SUSE Linux Enterprise High Performance Computing 12 SP5 is installed AND Package Information MozillaFirefox-68.1.0-109.92 is installed OR MozillaFirefox-translations-common-68.1.0-109.92 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 is installed AND Package Information kgraft-patch-3_12_57-60_35-default-1-2 is installed OR kgraft-patch-3_12_57-60_35-xen-1-2 is installed OR kgraft-patch-SLE12-SP1_Update_4-1-2 is installed Definition Synopsis SUSE Linux Enterprise Live Patching 12 SP3 is installed AND Package Information kgraft-patch-4_4_92-6_18-default-1-4 is installed OR kgraft-patch-SLE12-SP3_Update_4-1-4 is installed Definition Synopsis SUSE Linux Enterprise Module for Advanced Systems Management 12 is installed AND Package Information puppet-3.6.2-3 is installed OR puppet-server-3.6.2-3 is installed Definition Synopsis SUSE Linux Enterprise Module for Containers 12 is installed AND Package Information ruby2.1-rubygem-rack-1_4-1.4.5-8 is installed OR rubygem-rack-1_4-1.4.5-8 is installed Definition Synopsis SUSE Linux Enterprise Module for Legacy Software 12 is installed AND Package Information compat-openssl098-0.9.8j-73 is installed OR libopenssl0_9_8-0.9.8j-73 is installed OR libopenssl0_9_8-32bit-0.9.8j-73 is installed Definition Synopsis SUSE Linux Enterprise Module for Public Cloud 12 is installed AND python-PyYAML-3.10-15 is installed Definition Synopsis SUSE Linux Enterprise Module for Web Scripting 12 is installed AND Package Information libpython3_4m1_0-3.4.1-2 is installed OR python3-base-3.4.1-2 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP1 is installed AND kvm-0.12.3-0.11.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP2 is installed AND apache2-mod_perl-2.0.4-40.19 is installed Definition Synopsis Release Information SUSE Linux Enterprise Server 11 SP3 is installed AND java-1_6_0-ibm-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-alsa-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.2-0.3.1 is installed OR Package Information SUSE Linux Enterprise Server for VMWare 11 SP3 is installed AND java-1_6_0-ibm-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-alsa-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-fonts-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-jdbc-1.6.0_sr16.2-0.3.1 is installed OR java-1_6_0-ibm-plugin-1.6.0_sr16.2-0.3.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP3 is installed AND Package Information libtiff3-3.8.2-141.152.1 is installed OR libtiff3-32bit-3.8.2-141.152.1 is installed OR libtiff3-x86-3.8.2-141.152.1 is installed OR tiff-3.8.2-141.152.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11 SP4 is installed AND Package Information MozillaFirefox-31.7.0esr-0.8.1 is installed OR MozillaFirefox-translations-31.7.0esr-0.8.1 is installed Definition Synopsis SUSE Linux Enterprise Server 11-SECURITY is installed AND Package Information libldap-openssl1-2_4-2-2.4.26-0.30.2 is installed OR libldap-openssl1-2_4-2-32bit-2.4.26-0.30.2 is installed OR libldap-openssl1-2_4-2-x86-2.4.26-0.30.2 is installed Definition Synopsis SUSE Linux Enterprise Server 12 is installed AND Package Information bind-9.9.5P1-1 is installed OR bind-chrootenv-9.9.5P1-1 is installed OR bind-doc-9.9.5P1-1 is installed OR bind-libs-9.9.5P1-1 is installed OR bind-libs-32bit-9.9.5P1-1 is installed OR bind-utils-9.9.5P1-1 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP1 is installed AND Package Information fetchmail-6.3.26-5 is installed OR fetchmailconf-6.3.26-5 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP2 is installed AND Package Information accountsservice-0.6.42-14 is installed OR accountsservice-lang-0.6.42-14 is installed OR libaccountsservice0-0.6.42-14 is installed OR typelib-1_0-AccountsService-1_0-0.6.42-14 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP3 is installed AND Package Information DirectFB-1.7.1-6 is installed OR lib++dfb-1_7-1-1.7.1-6 is installed OR libdirectfb-1_7-1-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Server 12 SP4 is installed AND apache2-mod_jk-1.2.40-5 is installed Definition Synopsis SUSE Linux Enterprise Server for Raspberry Pi 12 SP2 is installed AND pigz-2.3-5 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP2 is installed AND Package Information kernel-default-4.4.121-92.120 is installed OR kernel-default-base-4.4.121-92.120 is installed OR kernel-default-devel-4.4.121-92.120 is installed OR kernel-devel-4.4.121-92.120 is installed OR kernel-macros-4.4.121-92.120 is installed OR kernel-source-4.4.121-92.120 is installed OR kernel-syms-4.4.121-92.120 is installed OR kgraft-patch-4_4_121-92_120-default-1-3.3 is installed OR kgraft-patch-SLE12-SP2_Update_32-1-3.3 is installed Definition Synopsis SUSE Linux Enterprise Server for SAP Applications 12 SP3 is installed AND Package Information compat-openssl098-0.9.8j-106.6 is installed OR libopenssl0_9_8-0.9.8j-106.6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP2 is installed AND Package Information ImageMagick-6.4.3.6-7.26.1 is installed OR ImageMagick-devel-6.4.3.6-7.26.1 is installed OR libMagick++-devel-6.4.3.6-7.26.1 is installed OR libMagick++1-6.4.3.6-7.26.1 is installed OR libMagickWand1-6.4.3.6-7.26.1 is installed OR libMagickWand1-32bit-6.4.3.6-7.26.1 is installed OR perl-PerlMagick-6.4.3.6-7.26.1 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP3 is installed AND Package Information MozillaFirefox-38.5.0esr-28.2 is installed OR MozillaFirefox-devel-38.5.0esr-28.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 11 SP4 is installed AND NetworkManager-devel-0.7.1_git20090811-3.28.2 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 is installed AND automake-1.13.4-4 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP1 is installed AND alsa-devel-1.0.27.2-11 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP2 is installed AND Package Information DirectFB-devel-1.7.1-6 is installed OR lib++dfb-devel-1.7.1-6 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP3 is installed AND cairo-devel-1.15.2-24 is installed Definition Synopsis SUSE Linux Enterprise Software Development Kit 12 SP4 is installed AND aaa_base-malloccheck-13.2+git20140911.61c1681-38.8 is installed
BACK